1076 matches found
CVE-2024-42425
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42425
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42425
The CVE-2024-42425 entry relates to Dell Precision Rack BIOS (14G) with Intel BIOS versions prior to 2.22.2. The vulnerability is an Access of Memory Location After End of Buffer, enabling a low-privilege local attacker to cause information disclosure by reading memory after a buffer boundary. Af...
CVE-2024-42425
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42424
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42424
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42424
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42424
Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2024-42424
Summary (CVE-2024-42424) : Affected product is Dell Precision Rack BIOS on 14G Intel BIOS versions prior to 2.22.2. The vulnerability arises from an improper input validation in the BIOS utility. A high-privileged attacker with local access could exploit this to cause information disclosure . No ...
PT-2024-29940 · Dell · Dell Precision Rack
Name of the Vulnerable Software and Affected Versions: Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2 Description: The issue is related to an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this...
Dell Precision Rack BIOS 输入验证错误漏洞
Dell Precision Rack BIOS is a BIOS utility for high-performance workstation products from Dell USA. The Dell Precision Rack BIOS is vulnerable to an input validation error vulnerability that originates from incorrect input validation. Exploitation of this vulnerability by a highly privileged...
Dell Precision Rack BIOS 安全漏洞
Dell Precision Rack BIOS is a BIOS utility for high-performance workstation products from Dell USA. An information disclosure vulnerability exists in the Dell Precision Rack BIOS that originates from accessing a memory location after the end of a buffer. A low-privileged attacker with local acces...
The vulnerability of the microprogrammed software in the ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix 5380 systems, related to errors in processing input data, allows a intruder to trigger a service failure.
The vulnerability of the microprogrammed software in programmable logic controllers such as ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix 5380 is related to errors in processing input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a...
GHSA-WQ9X-QWCQ-MMGF Diesel vulnerable to Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts
The following presentation at this year's DEF CON was brought to our attention on the Diesel Gitter Channel: SQL Injection isn't Dead: Smuggling Queries at the Protocol Level Archive link for posterity. Essentially, encoding a value larger than 4GiB can cause the length prefix in the protocol to...
Diesel vulnerable to Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts
The following presentation at this year's DEF CON was brought to our attention on the Diesel Gitter Channel: SQL Injection isn't Dead: Smuggling Queries at the Protocol Level Archive link for posterity. Essentially, encoding a value larger than 4GiB can cause the length prefix in the protocol to...
kernel: ice: Don't process extts if PTP is disabled
In the Linux kernel, the following vulnerability has been resolved: ice: Don't process extts if PTP is disabled The iceptpexttsevent function can race with iceptprelease and result in a NULL pointer dereference which leads to a kernel panic. Panic occurs because the iceptpexttsevent function call...
kernel: bnxt: prevent skb UAF after handing over to PTP worker
A possible use-after-free after handing over to PTP worker was found in the Linux kernel. This may lead to a crash...
kernel: bnxt: prevent skb UAF after handing over to PTP worker
A possible use-after-free after handing over to PTP worker was found in the Linux kernel. This may lead to a crash...
SUSE CVE-2024-42107
In the Linux kernel, the following vulnerability has been resolved: ice: Don't process extts if PTP is disabled The iceptpexttsevent function can race with iceptprelease and result in a NULL pointer dereference which leads to a kernel panic. Panic occurs because the iceptpexttsevent function call...
SUSE CVE-2024-42139
In the Linux kernel, the following vulnerability has been resolved: ice: Fix improper extts handling Extts events are disabled and enabled by the application ts2phc. However, in case where the driver is removed when the application is running, a specific extts event remains enabled and can cause ...